The Endpoint Network Isolation feature is provided by Apex One EPP solution as most of the customers who enable EDR solution have Apex One EPP solution deployed. However, this approach cannot serve those who have no Apex One EPP solution deployed, such as Deep Security Software and other EPP solutions, and also those who require immediate incident responses. Therefore, the new strategy is to enable Trend Micro Vision One Endpoint to provide the feature.
- Performing Endpoint Isolation and Restoration either from Trend Micro Vision One and Apex One is individual/independent, which means that if users isolate endpoints via Trend Micro Vision One, they have to restore them from Trend Micro Vision One.
- There is no visibility consolidation. This means that Trend Micro Vision One has no idea which endpoints are being isolated by Apex One and Apex One has no idea about this done by Trend Micro Vision One.
If the user performs “Custom script” with network connection related functions or commands against on an isolated endpoint on Trend Micro Vision One Response App, the script may encounter error due to the isolated network access.